CVE-2026-4831

Name of the Vulnerable Software and Affected Versions kalcaddle kodbox version 1.64

Description A security flaw exists in kalcaddle kodbox version 1.64 related to improper authentication within the Password-protected Share Handler component. The issue resides in the can function of the file /workspace/source-code/app/controller/explorer/auth.class.php. A remote attacker with high complexity and difficult exploitability can manipulate the system. The exploit has been publicly released. The vendor was notified but did not respond.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.